I did. I was able to look it up using the short name, and the FQDN. Anyway, I had to go with another solution (mod_auth_kerb)
On 3/25/07, Aaron Browne <[EMAIL PROTECTED]> wrote:
I am pretty sure the NONCE error occurs when the domain controller names cannot be resolved. Did you try nslookup etc? On Tue, 2007-03-20 at 13:44 -0400, Shawn Kovalchick wrote: > I'm trying to set up AuthenNTLM, but can't get connected to my domain > controller. I've tried adding "domain company.com" and "search > company.com" to /etc/resolv.conf. I've tried adding > controler1.company.com to the /etc/hosts file. > > What am I doing wrong? Does Samba need to be set up? Does the server > need to be a member of the domain? > > Below is my configuration: > > <Directory "/usr/share/xxx"> > PerlAuthenHandler Apache2::AuthenNTLM > AuthType ntlm,basic > Require valid-user > AuthName "xxx" > > PerlAddVar ntdomain "DOMAIN controller1 controller2" > PerlSetVar defaultdomain DOMAIN > PerlSetVar splitdomainprefix 1 > PerlSetVar ntlmdebug 3 > AllowOverride None > Order allow,deny > Allow from all > </Directory> > > And below is the debug from apache: > > [2966] AuthenNTLM: Config Domain = domain pdc = controller1 bdc = controller2 > [2966] AuthenNTLM: Config Default Domain = DOMAIN > [2966] AuthenNTLM: Config Fallback Domain = > [2966] AuthenNTLM: Config AuthType = ntlm,basic AuthName = xxx > [2966] AuthenNTLM: Config Auth NTLM = 1 Auth Basic = 1 > [2966] AuthenNTLM: Config NTLMAuthoritative = on BasicAuthoritative = on > [2966] AuthenNTLM: Config Semaphore key = 23754 timeout = 2 > [2966] AuthenNTLM: Config SplitDomainPrefix = 1 > [2966] AuthenNTLM: Authorization Header <not given> > [Tue Mar 20 13:27:57 2007] [error] Bad/Missing NTLM/Basic > Authorization Header for /nagios > [2966] AuthenNTLM: Start NTLM Authen handler pid = 2966, connection = > 168464048 conn_http_hdr = keep-alive main = cuser = remote_ip = > 10.111.40.195 remote_port = 13106 remote_host = <> version = 0.02 > smbhandle = > [2966] AuthenNTLM: Object exists user = \ > [2966] AuthenNTLM: Authorization Header NTLM > TlRMTVNTUAABAAAAB4IIAAAAAAAAAAAAAAAAAAAAAAA= > [2966] AuthenNTLM: Got: 78 84 76 77 83 83 80 0 1 0 0 0 7 130 8 0 0 0 0 > 0 0 0 0 0 0 0 0 0 0 0 0 0 > [2966] AuthenNTLM: protocol=NTLMSSP, type=1, > flags1=7(NEGOTIATE_UNICODE,NEGOTIATE_OEM,REQUEST_TARGET), > flags2=130(NEGOTIATE_ALWAYS_SIGN,NEGOTIATE_NTLM), domain length=0, > domain offset=0, host length=0, host offset=0, host=, domain= > [2966] handler type == 1 > [2966] AuthenNTLM: Connect to pdc = controller1 bdc = controller2 > domain = domain > [2966] AuthenNTLM: enter lock > [2966] AuthenNTLM: verify handle smbhandle == 0 > [Tue Mar 20 13:27:57 2007] [error] Connect to SMB Server failed (pdc = > controller1 bdc = controller2 domain = domain error = -11/0) for > /nagios > [2966] AuthenNTLM: leave lock > [Tue Mar 20 13:27:57 2007] [error] Cannot get nonce
